Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

CAPTCHA on Confluence every first login attempt. Since changing password.

Ariia
Ariia October 4, 2018

Since changing the password for an administrative user, the user failes their primary login attempt, every time.

The 2nd along with a captcha works.

Confluence is Linked with Jira.

Jira does not have this issue.

 

I have reset the password again. I have cleared confluence cache. I hace cleared local cache and cookies. I have tried in alternative browsers.  The issue persists.

The issue does not appear to exist for other users.

 

How can i resolve this?

Answer
Watch
Like Be the first to like this
854 views

3 answers

0 votes
JP _AC Bielefeld Leader_
JP _AC Bielefeld Leader_
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 5, 2018

Hm,

the log shows, that some activity gadgets are accessing Confluence from Jira to display a Confluence activity stream in Jira. This is typically done by impersonation (OAuth) of the user logged into Jira. 

You wrote that this issue happens with an admin user. Is this user create locally on Jira & Confluence? In this case the password has to be set on both systems to the same value. 

Just guessing...

Best 

JP

View More Comments
Ariia
Ariia October 5, 2018

@JP _AC Bielefeld Leader_

I have found an unusually high number of failed logins. 45k

This is clearly what is causing the captcha.

I have noticed also that the confluence username used be all lowercase.

Yet in Jira the username is capitalised, which matches the username in confluence. 

Like
Reply
0 votes
Ariia
Ariia October 4, 2018

I thought i had found that clearing the stored sessions in Jira solves this issue.

 

It remains an issue.

Reply
0 votes
JP _AC Bielefeld Leader_
JP _AC Bielefeld Leader_
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 4, 2018

Hi Stuart,

you could do one more check:

- Ask the user to contact you before he logs in

- Open the user account in the admin section & check for the last logins (successful / unsuccessful) 

- This might give you a hint, if someone/something else tries to (auto-)login with an invalid password

- Make sure the user doesn't use a bookmark to login but enters the URL directly in the browser

Do you use any kind of SSO (Single Sign On) solution? Do you use a common user base (Active Directory / LDAP) with Jira & Confluence?

Best

JP

View More Comments
Ariia
Ariia October 4, 2018

Hi, thanks for the prompt response. The user is myself, in this case.

The log in jira shows the following, when the error/captcha occurs on confluence front end.

04-Oct-2018 16:13:49.864 WARNING [http-nio-8080-exec-4] com.sun.jersey.spi.container.servlet.WebComponent.filterFormParameters A servlet request, to the URI https://x.x.x.x/rest/gadget/1.0/login, contains form parameters in the
request body but the request body has been consumed by the servlet or a servlet filter accessing the request parameters. Only resource methods using @FormParam will work as expected. Resource methods consuming the request body by other
means will not work as expected.
04-Oct-2018 16:13:54.759 WARNING [http-nio-8080-exec-16] com.sun.jersey.spi.container.servlet.WebComponent.filterFormParameters A servlet request, to the URI https://x.x.x.x/rest/activity-stream/1.0/preferences?_=123456789xxx,
contains form parameters in the request body but the request body has been consumed by the servlet or a servlet filter accessing the request parameters. Only resource methods using @FormParam will work as expected. Resource methods consuming the request body by other means will not work as expected.

 

There is no SSO.

Jira server & Confluence Server linked, using directory.

Like
Ariia
Ariia October 5, 2018

@JP _AC Bielefeld Leader_

I thought i had resolved this, however the issue persists.

Am i missing a specific log file perhaps?

Like
Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events